CVE-2025-23543

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fomopay FOMO Pay Chinese Payment Solution fomo-payment-gateway-for-woocommerce allows Reflected XSS.This issue affects FOMO Pay Chinese Payment Solution: from n/a through = 2.0.4...

EUVD-2024-52367

Malicious code in bioql PyPI...

EUVD-2025-8195

Malicious code in bioql PyPI...

EUVD-2024-29135

Malicious code in bioql PyPI...

CVE-2024-31239

Cross-Site Request Forgery CSRF vulnerability in Nudgify Nudgify Social Proof, Sales Popup & FOMO.This issue affects Nudgify Social Proof, Sales Popup & FOMO: from n/a through 1.3.3...

CVE-2025-23543

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fomopay FOMO Pay Chinese Payment Solution fomo-payment-gateway-for-woocommerce allows Reflected XSS.This issue affects FOMO Pay Chinese Payment Solution: from n/a through = 2.0.4...

CVE-2025-23543 WordPress FOMO Pay Chinese Payment Solution plugin <= 2.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fomopay FOMO Pay Chinese Payment Solution fomo-payment-gateway-for-woocommerce allows Reflected XSS.This issue affects FOMO Pay Chinese Payment Solution: from n/a through = 2.0.4...

CVE-2025-23543

CVE-2025-23543 : Reflected Cross-Site Scripting in the WordPress plugin “FOMO Pay Chinese Payment Solution” (NotFound) used with WooCommerce. Affected versions: from n/a through 2.0.4. The root cause is improper input neutralization during web page generation, enabling reflected XSS. Connected Re...

CVE-2025-23543 WordPress FOMO Pay Chinese Payment Solution plugin <= 2.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound FOMO Pay Chinese Payment Solution allows Reflected XSS. This issue affects FOMO Pay Chinese Payment Solution: from n/a through 2.0.4...

WordPress plugin FOMO Pay Chinese Payment Solution 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...

WordPress FOMO Pay Chinese Payment Solution plugin <= 2.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara Kinorth in WordPress Plugin FOMO Pay Chinese Payment Solution versions = 2.0.4...

PT-2024-36120 · Unknown · Elite Notification – Sales Popup

Name of the Vulnerable Software and Affected Versions: Elite Notification – Sales Popup, Social Proof, FOMO & WooCommerce Notification versions 1.5 through n/a Description: The issue is related to a Missing Authorization vulnerability, which allows exploitation due to incorrectly configured acces...

CVE-2024-31239

Cross-Site Request Forgery CSRF vulnerability in Nudgify Nudgify Social Proof, Sales Popup & FOMO.This issue affects Nudgify Social Proof, Sales Popup & FOMO: from n/a through 1.3.3...

CVE-2024-31239

CVE-2024-31239 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Nudgify Nudgify Social Proof, Sales Popup & FOMO, affecting versions up to 1.3.3. The available data specifies a CVSS v3.1 base score of 4.3 (Medium) with network attack vector, low attack complexity, no c...

WordPress Plugin Nudgify Social Proof, Sales Popup & FOMO 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Nudgify Social Proof, Sale...

Nudgify Social Proof, Sales Popup & FOMO < 1.3.4 - Cross-Site Request Forgery via sync_orders_manually()

Description The Nudgify Social Proof, Sales Popup & FOMO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.3. This is due to missing or incorrect nonce validation on the syncordersmanually function. This makes it possible for unauthenticated...

Gas, a positive social network for teens (no, really)

A new social network is currently in the news, billed as a positive space for teens to enjoy themselves. Im all for positive spaces online, but what is it, and will teens really be happier there than say Instagram, or even just hanging out in WhatsApp groups? Pump the gas Launched in August of th...

“Look what I found here” phish targets Facebook users

Facebook-themed messages are a frequent source of bogus links from both spam and compromised accounts. Whether you receive the messages via SMS, the Messenger app, or just inside regular web chat, it pays to be careful. A wide variety of attacks use bogus messages as their launchpad, and the risk...

WordPress "Notification Plus – Social Proof, Fomo, WooCommerce Recent Sales Notifications & Popups for WordPress" plugin <= 1.0.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress "Notification Plus – Social Proof, Fomo, WooCommerce Recent Sales Notifications & Popups for WordPress" plugin versions = 1.0.1. Solution No patched version available...

GameStop FOMO Inspires a New Wave of Crypto Pump-and-Dumps

Thousands of would-be investors are joining Discord groups that promise big earnings by manipulating the crypto market...